Debian Faac vulnerabilities
8 known vulnerabilities affecting debian/faac.
Total CVEs
8
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM2LOW6
Vulnerabilities
Page 1 of 1
CVE-2017-9129P4MEDIUMCVSS 5.5PoCfixed in faac 1.29+git20170704-1 (bookworm)2017
CVE-2017-9129 [MEDIUM] CVE-2017-9129: faac - The wav_open_read function in frontend/input.c in Freeware Advanced Audio Coder ...
The wav_open_read function in frontend/input.c in Freeware Advanced Audio Coder (FAAC) 1.28 allows remote attackers to cause a denial of service (large loop) via a crafted wav file.
Scope: local
bookworm: resolved (fixed in 1.29+git20170704-1)
bullseye: resolved (fixed in 1.29+git20170704-1)
forky: resolved (fixed in 1.29+git20170704-1)
sid: resolved (fixed in 1.29+git
debian
CVE-2017-9130P4MEDIUMCVSS 5.5PoCfixed in faac 1.29+git20170704-1 (bookworm)2017
CVE-2017-9130 [MEDIUM] CVE-2017-9130: faac - The faacEncOpen function in libfaac/frame.c in Freeware Advanced Audio Coder (FA...
The faacEncOpen function in libfaac/frame.c in Freeware Advanced Audio Coder (FAAC) 1.28 allows remote attackers to cause a denial of service (invalid memory read and application crash) via a crafted wav file.
Scope: local
bookworm: resolved (fixed in 1.29+git20170704-1)
bullseye: resolved (fixed in 1.29+git20170704-1)
forky: resolved (fixed in 1.29+git20170704-1)
sid:
debian
CVE-2018-19891P4LOWCVSS 5.5fixed in faac 1.30-1 (bookworm)2018
CVE-2018-19891 [MEDIUM] CVE-2018-19891: faac - An invalid memory address dereference was discovered in the huffcode function (l...
An invalid memory address dereference was discovered in the huffcode function (libfaac/huff2.c) in Freeware Advanced Audio Coder (FAAC) 1.29.9.2. The vulnerability causes a segmentation fault and application crash, which leads to denial of service in the book 10 case.
Scope: local
bookworm: resolved (fixed in 1.30-1)
bullseye: resolved (fixed in 1.30-1)
forky: resolv
debian
CVE-2018-19886P4LOWCVSS 5.5fixed in faac 1.30-1 (bookworm)2018
CVE-2018-19886 [MEDIUM] CVE-2018-19886: faac - An invalid memory address dereference was discovered in the huffcode function (l...
An invalid memory address dereference was discovered in the huffcode function (libfaac/huff2.c) in Freeware Advanced Audio Coder (FAAC) 1.29.9.2. The vulnerability causes a segmentation fault and application crash, which leads to denial of service in the book 8 case.
Scope: local
bookworm: resolved (fixed in 1.30-1)
bullseye: resolved (fixed in 1.30-1)
forky: resolve
debian
CVE-2018-19889P4LOWCVSS 5.5fixed in faac 1.30-1 (bookworm)2018
CVE-2018-19889 [MEDIUM] CVE-2018-19889: faac - An invalid memory address dereference was discovered in the huffcode function (l...
An invalid memory address dereference was discovered in the huffcode function (libfaac/huff2.c) in Freeware Advanced Audio Coder (FAAC) 1.29.9.2. The vulnerability causes a segmentation fault and application crash, which leads to denial of service in the book 6 case.
Scope: local
bookworm: resolved (fixed in 1.30-1)
bullseye: resolved (fixed in 1.30-1)
forky: resolve
debian
CVE-2018-19887P4LOWCVSS 5.5fixed in faac 1.30-1 (bookworm)2018
CVE-2018-19887 [MEDIUM] CVE-2018-19887: faac - An invalid memory address dereference was discovered in the huffcode function (l...
An invalid memory address dereference was discovered in the huffcode function (libfaac/huff2.c) in Freeware Advanced Audio Coder (FAAC) 1.29.9.2. The vulnerability causes a segmentation fault and application crash, which leads to denial of service in the book 4 case.
Scope: local
bookworm: resolved (fixed in 1.30-1)
bullseye: resolved (fixed in 1.30-1)
forky: resolve
debian
CVE-2018-19890P4LOWCVSS 5.5fixed in faac 1.30-1 (bookworm)2018
CVE-2018-19890 [MEDIUM] CVE-2018-19890: faac - An invalid memory address dereference was discovered in the huffcode function (l...
An invalid memory address dereference was discovered in the huffcode function (libfaac/huff2.c) in Freeware Advanced Audio Coder (FAAC) 1.29.9.2. The vulnerability causes a segmentation fault and application crash, which leads to denial of service in the book 2 case.
Scope: local
bookworm: resolved (fixed in 1.30-1)
bullseye: resolved (fixed in 1.30-1)
forky: resolve
debian
CVE-2018-19888P4LOWCVSS 5.5fixed in faac 1.30-1 (bookworm)2018
CVE-2018-19888 [MEDIUM] CVE-2018-19888: faac - An invalid memory address dereference was discovered in the huffcode function (l...
An invalid memory address dereference was discovered in the huffcode function (libfaac/huff2.c) in Freeware Advanced Audio Coder (FAAC) 1.29.9.2. The vulnerability causes a segmentation fault and application crash, which leads to denial of service in the HCB_ESC case.
Scope: local
bookworm: resolved (fixed in 1.30-1)
bullseye: resolved (fixed in 1.30-1)
forky: resolv
debian